Expand CalculatorApplication->Web Services, then right-click
the node for the web service, CalculatorWS, and select Edit Web Service Attributes.

Deselect the Reliable Messaging option if it is selected.

Select Secure Service.

From the drop-down list for Security Mechanism, select SAML Sender
Vouches with Certificates.

Click the Keystore button to provide your keystore with the alias
identifying the service certificate and private key. To do this, click the
Load Aliases button and select xws-security-server, then
click OK to close the dialog.

For this example, the Truststore information that you need is
specified by default, so there is no need to change these settings.

Click OK to exit the WSIT Configuration editor.

A new file is added to the project. To view the WSIT configuration
file, expand Web Pages->WEB-INF, then double-click the file wsit-org.me.calculator.CalculatorWS.xml. This file contains the sc:KeyStore and sc:Truststore elements.

Right-click the CalculatorApplication node and select Run Project.
Accept the s1as certificate if you are prompted to.

A browser will open and display the WSDL file for the application.

Verify that the WSDL file contains the TransportBinding and SignedSupportingTokens element, which in turn contains a SamlToken element.